Package io.goobi.viewer.model.security.authentication

package io.goobi.viewer.model.security.authentication

Provides authentication provider implementations for the Goobi viewer, supporting local credentials as well as external systems such as OpenID Connect, VuFind, Bibliotheca, Littera, and HTTP-header-based single sign-on.

Related Packages

Package	Description
io.goobi.viewer.model.security	Provides the core access-control domain model for the Goobi viewer, including license types, access permissions, privilege holders, copyright indicators, and security questions.
io.goobi.viewer.model.security.authentication.model	Contains request and response data-transfer objects exchanged with external authentication backends such as Bibliotheca, Littera, VuFind, and XService.
io.goobi.viewer.model.security.clients	Manages trusted client applications that interact with the Goobi viewer API, providing registration, session association, and permission checking for client credentials.
io.goobi.viewer.model.security.encryption	Provides encryption and decryption utilities for the Goobi viewer security layer, used to protect sensitive data such as stored credentials or access tokens.
io.goobi.viewer.model.security.recordlock	Implements an in-memory record locking mechanism that prevents concurrent conflicting access to individual records, tracking active locks and their owning sessions.
io.goobi.viewer.model.security.tickets	Provides time-limited access tickets that grant temporary permission to restricted resources without requiring full user authentication in the Goobi viewer.
io.goobi.viewer.model.security.user	Contains the user domain model for the Goobi viewer, including user accounts, groups, roles, IP ranges, activity tracking, and related utility methods.

Class	Description
AuthenticationProviderException	An exception indicating that an error occurred when trying to authenticate a user.
AuthResponseListener<T extends IAuthenticationProvider>	Implementation of AuthResponseListener which keeps all providers waiting for a response in a ConcurrentHashMap.
BibliothecaProvider	Authentication provider that validates user credentials against the Bibliotheca library management system.
HttpAuthenticationProvider	Authentication provider that delegates credential validation to an external HTTP endpoint.
HttpHeaderProvider	Authentication provider that authenticates users by reading a user identifier from an HTTP request header (or parameter), then looking up or creating the corresponding User account.
IAuthenticationProvider	Interface of all user authentication related actions, particularly logging in and out of a viewer user account.
LitteraProvider	External authentication provider for the LITTERA reader authentication api (www.littera.eu).
LocalAuthenticationProvider	An authentication provider using the local login provided by the viewer database.
LoginResult	Encapsulates the outcome of an authentication attempt, including the authenticated user and any error message.
OpenIdProvider	Authentication provider that authenticates users via an OpenID Connect identity provider.
VuFindProvider	Authentication provider that validates user credentials against a VuFind instance.
XServiceProvider	Authentication provider that authenticates users via the X-Service API.